1. Home
  2. Security Advisories
  3. AlmaLinux OS
  4. ALSA-2021:3771

[ALSA-2021:3771] grafana security update

Severity Important
Affected Packages 1
CVEs 1
Info Packages References Vulnerabilities

An update for grafana is now available for AlmaLinux AlmaLinux Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.

Security Fix(es):

  • grafana: Snapshot authentication bypass (CVE-2021-39226)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Package Affected Version
pkg:rpm/almalinux/grafana?arch=x86_64&distro=almalinux-8.4 < 7.3.6-3.el8_4
ID
ALSA-2021:3771
Severity
important
URL
https://errata.almalinux.org/ALSA-2021:3771.html
Published
2021-10-12T10:35:50
(2 years ago)
Modified
2021-10-13T14:16:25
(2 years ago)
Rights
Copyright 2021 AlmaLinux OS
Other Advisories
Source # ID Name URL
CVE CVE-2021-39226 https://vulners.com/cve/CVE-2021-39226
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/almalinux/grafana?arch=x86_64&distro=almalinux-8.4 almalinux grafana < 7.3.6-3.el8_4 almalinux-8.4 x86_64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date